Application Security Engineer

We are looking for an Application Security Engineer to work for our client. The ideal candidate aligns with the responsibilities and qualifications outlined below.

This is a high-impact opportunity to join a growing security function focused on protecting cloud-native applications and healthcare systems. In this role, you'll embed security into the software development lifecycle, helping to proactively identify vulnerabilities and strengthen application defenses across critical platforms, including those integrated with EPIC systems.

If you're passionate about secure coding practices, application testing, and protecting sensitive healthcare data, this role offers meaningful technical ownership and purpose-driven work.

Responsibilities

Integrate security into the SDLC, partnering with development teams from design through deployment

Perform and manage SAST and DAST testing to identify and remediate vulnerabilities

Conduct application security assessments across web, mobile, and API layers

Secure and monitor APIs and cloud-native applications

Collaborate with DevOps teams to implement security controls in CI/CD pipelines

Support threat modeling and risk assessments for new and existing applications

Provide guidance on secure coding practices and vulnerability remediation

Contribute to security policies, standards, and best practices Qualifications

3+ years of experience in application security or cybersecurity engineering

Hands-on experience with SAST and DAST tools (e.g., Veracode, Checkmarx, Burp Suite, etc.)

Strong understanding of API security and web application vulnerabilities (OWASP Top 10)

Experience securing cloud-native applications (AWS, Azure, or GCP)

Familiarity with CI/CD tools and integrating security into pipelines

Healthcare industry experience required, with knowledge of compliance and sensitive data handling

Experience supporting or integrating with EPIC systems strongly preferred

Strong communication skills and ability to partner with development teams What Our Client Offers

Competitive compensation and opportunities for advancement

A purpose-driven environment supporting healthcare innovation

Opportunity to secure mission-critical healthcare applications and systems

Exposure to modern application security tools and frameworks

A collaborative culture focused on continuous improvement and knowledge sharing

Hybrid work flexibility supporting work-life balance